Ohio domestic insurers (companies licensed and headquartered in the state) are required to annually file their cybersecurity program information with the Ohio Department of Insurance. All domestic insurers are required to certify the existence of an information security program or file a notice of exemption, per Ohio's cybersecurity law.
Single-state domestic insurers are required to file their certification or exemption notices by June 1. Multi-state domestic insurers are required to file their certification or exemption notices by Feb. 15. Filings can be submitted electronically by signing into OHID.Ohio.gov and clicking the information security compliance link.